Amex GBT is a place where colleagues find inspiration in travel as a force for good and – through their work – can make an impact on our industry. We’re here to help our colleagues achieve success and offer an inclusive and collaborative culture where your voice is valued.
Ready to explore a career path? Start your journey.
Position Overview:
Privileged Access Management engineer to support implementation and operational processes of CyberArk Privileged Access Management (PAM) and Endpoint Privilege Management (EPM) environment.
What You’ll do on a Typical Day:
- Support deployment, configuration and management of EPM solutions to end-point devices in hybrid environments (on-premises and cloud).
- Manage endpoint policies to enforce least privilege and reduce attack surfaces using principles of least privilege and role-based access control (RBAC)
- Work on configuration, development, and maintenance of automation scripts/tools to maintain EPM policies.
- Gather requirements, create implementation plans and implement new policies or versions for EPM to rollout to new devices/users.
- Conduct regular health checks, review/enhance existing implementation, and monitor EPM activities for privileged sessions and enforcement of access policies.
- Perform ongoing activities like testing, upgrade, and patching of EPM agents.
- Managing privileged accounts/secrets in Privileged Access Management (PAM) solution.
- Support operational processes for access rotation, auditing, and logging of privileged sessions.
- Conduct access reviews, audit and compliance reporting for privileged accounts/secrets and access policies.
- Implement onboarding of accounts, servers and applications to Privilege Cloud utilizing CyberArk connectors and plugins.
- Resolve incidents related to, and fulfil service requests for access, configurations and artifacts for Privilege Access Management and Endpoint Privilege Management.
- Create and maintain documentation and conduct training sessions for use cases, best practices, and standard operating procedures for Privileged Access Management and Endpoint Privilege Management.
What We’re looking for:
- 6+ years of experience with PAM and EPM solutions, Design, Engineering and Operations.
- Experience with world class Privileged Identity and Access Management and Endpoint Privilege Management solutions (CyberArk, Beyond Trust)
- Scripting / Automation tools to manage endpoint and privilege policies using scripting like PowerShell, Python, etc. and deployment tools like SCCM and JAMF.
- Experience working in an enterprise environment with Incident Management, Change Management, and SOX/PCI controls.
- Experience with setting up logging, monitoring, and troubleshooting tools like Sysmon, SIEMs, etc.
- Strong interpersonal and consultative skills.
- Ability to effectively prioritize and execute tasks in a high-pressure environment.
- Excellent written & verbal communication skills
- Experience working in a team-oriented, collaborative environment.
- Perform their duties under minimal supervision, exercising autonomy to review and fulfil their duties within the scope of their position.
Required Education:
University degree in Information Technology, or equivalent combination of education and industry certifications (CISSP, or relevant certifications a plus).
Location
India
The #TeamGBT Experience
Work and life: Find your happy medium at Amex GBT.
Flexible benefits are tailored to each country and start the day you do. These include health and welfare insurance plans, retirement programs, parental leave, adoption assistance, and more.
Travel perks: get a choice of deals each week from major travel providers on everything from flights to hotels to cruises and car rentals.
Develop the skills you want when the time is right for you, with global tuition assistance, access to over 20,000 courses on our learning platform, leadership courses, and new job openings available to internal candidates first.
We strive to champion Diversity, Equity, and Inclusion in every aspect of our business at GBT. You can connect with colleagues through our global Inclusion Groups, centered around common identities or initiatives, to discuss challenges, obstacles, achievements, and drive company awareness and action.
Wellbeing resources to support mental and emotional health for you and your immediate family.
And much more!
All applicants will receive equal consideration for employment without regard to age, sex, gender (and characteristics related to sex and gender), pregnancy (and related medical conditions), race, color, citizenship, religion, disability, or any other class or characteristic protected by law.
Furthermore, we are committed to providing reasonable accommodation to qualified individuals with disabilities. Please let your recruiter know if you need an accommodation at any point during the hiring process. For details regarding how we protect your data, please consult GBT Recruitment Privacy Statement.
What if I don’t meet every requirement? If you’re passionate about our mission and believe you’d be a phenomenal addition to our team, don’t worry about “checking every box;" please apply anyway. You may be exactly the person we’re looking for!
